Detections
Analytics
Juniper NSM < 2012.2R9 Multiple Java and Apache Vulnerabilities (JSA10642)
critical Nessus Plugin ID 77326
Language:
Synopsis
The remote host is affected by multiple vulnerabilities.Description
The remote host has one or more instances of NSM (Network and Security Manager) Server running, with version(s) prior to 2012.2R9. It is, therefore, affected by multiple vulnerabilities related to its Java and Apache installations.Solution
Upgrade to NSM version 2012.2R9 or later.See Also
http://www.nessus.org/u?6d05776a
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10642
Plugin Details
Severity: Critical
ID: 77326
File Name: juniper_nsm_jsa10642.nasl
Version: 1.15
Type: remote
Family: Misc.
Published: 8/22/2014
Updated: 12/5/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:juniper:network_and_security_manager
Required KB Items: Juniper_NSM_VerDetected
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/13/2014
Vulnerability Publication Date: 5/16/2011
Exploitable With
Core Impact
Reference Information
CVE: CVE-2011-0419, CVE-2011-3192, CVE-2011-3368, CVE-2012-0031, CVE-2012-0053, CVE-2012-5081, CVE-2013-0169, CVE-2013-0440, CVE-2013-0443, CVE-2013-1537, CVE-2013-2407, CVE-2013-2451, CVE-2013-2457, CVE-2013-2461, CVE-2013-4002, CVE-2013-5780, CVE-2013-5802, CVE-2013-5803, CVE-2013-5823, CVE-2013-5825, CVE-2013-5830, CVE-2014-0411, CVE-2014-0423, CVE-2014-0453, CVE-2014-0460
BID: 47820, 49303, 49957, 51407, 51706, 56071, 57670, 57702, 57712, 57778, 59194, 60625, 60645, 60653, 61310, 63082, 63110, 63115, 63121, 63135, 64914, 64918, 66914, 66916